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USER CONTROL OF A SECURE WIRELESS COMPUTER NETWORK 

FIELD OF THE INVENTION 

This invention relates generally to wireless computer networks, and more particularly 
5 to establishing a secure wireless network. 

COPYRIGHT NOTICE/PERMISSION 

A portion of the disclosure of this patent document contains material which is subject 
to copyright protection. The copyright owner has no objection to the facsimile reproduction by 
10 anyone of the patent document or the patent disclosure as it appears in the Patent and 
I q Trademark Office patent file or records, but otherwise reserves all copyright rights 
fn whatsoever. The following notice applies to the software and data as described below and in 



As the number and type of resources available to a networked computer increases, the 
need to connect a computer into a network regardless of the location of the computer also 
increases. Because of the physical limitations inherent in wired networks, wireless network 
connections are growing in popularity. With the increase in the use of wireless networks 
20 comes the requirement to protect the data being exchanges since wireless signals are more 
easily captured than signals transmitted over a physical connection. 



the drawings hereto: Copyright © 1999, Apple Computer, Inc., All Rights Reserved. 
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BACKGROUND OF THE INVENTION 
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One approach to the problem of wireless connection security is addressed by the IEEE 
in the 802. 1 1 standard for Wireless LAN Medium Access Control (MAC) and Physical Layer 
(PHY) Specifications, Draft International Standard ISO/EC 8802-11 IEEE P802.il/D10, 14 
January 1999 (hereinafter "the 802.11 standard"). The 802.11 standard specifies an 
5 Infrastructure Network that provides wireless stations access to resources on a wired local area 
network (LAN) by way of an access point, such as a server on the wired LAN. The 
Infrastructure Network can be secured using a shared key to establish a Wired Equivalency 
Privacy (WEP) connection between the access point and each station, such as a desktop, 
laptop, or handheld computer. The shared keys are distributed to the stations through secure 
%10 channels outside the wireless network. 

ill The most security is provided when the access point generates a unique shared session 

W key for each station that may potentially connect. The session key is discarded when the 

connection is terminated. Because of the resources required to create and securely transmit a 
,Q unique shared key to each potential station for each session, often an access point uses a 
nj 15 single, common shared key for all stations for a given period of time, such as a day. However, 
Q each user must be informed of the conmion shared key for the current time period and must 
program it into the station. Additionally if there is a security breach so that a new common 
shared key is required before the time period expires, every station must be notified of the new 
common shared key, and each station must terminate its current session and establish a new 
20 connection. 
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Thus, the existing security mechanisms for wireless networks are cumbersome for the 
user by requiring constant manual updating of the station to reflect the current shared key, and 
burdensome on the access point by requiring the frequent generation of the shared keys and 
the distribution of those keys outside of the wireless network. 

SUMMARY OF THE INVENTION 

The above-mentioned shortcomings, disadvantages and problems are addressed by the 
present invention, which will be understood by reading and studying the following 
specification. 

A secured wireless communications channel between an access point and a station is 
established by a series of message exchanged between the access point and the station. The 
station sends a request for a security preference for the access point to the access point. The 
access point sends the security preference in response to the request when the access point can 
support the channel. When the security preference is shared key, the station generates 
authentication information using a first key and sends the authentication information to the 
access point. The access point uses the authentication information to validate the station. If 
the station is valid, the access point encrypts a channel key with a second key and sends the 
encrypted result to the station. The station decrypts the channel key and uses it to establish 
the wireless channel. 

The authentication information can be a user name and password, an encrypted 
challenge such as used in the Challenge Handshake Authentication Protocol, or other types of 
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data typically used to authenticate clients on a network. In one aspect, the first and second 
keys are identical keys. In another aspect, the first key is a public key for the access point and 
the second key is a public key for the station. 

Using the invention, the user is required to program the station only once—when it is 
5 initially setup for the wireless network. Because each station must authenticate itself to the 
access point before it can establish the wireless channel using a channel key, the access point 
can quickly secure the network against a security breach of a common channel key by 
disabling the login abilities of a now-invalid user without having to terminate all the other 
stations or having to generate a new common channel key. Thus, the burden on the access 

10 point of generating and distributing the common channel key is greatly reduced and the 
security of the wireless network when using a common channel key is enhanced. 

The present invention describes systems, methods, and computer-readable media of 
varying scope. In addition to the aspects and advantages of the present invention described in 
this summary, further aspects and advantages of the invention will become apparent by 

15 reference to the drawings and by reading the detailed description that follows. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a diagram of one embodiment of a computer system environment suitable for 
practicing the invention; 
20 FIG. 2 is a diagram illustrating a system-level overview of embodiments of the 



invention; 



004860. P2436 



FIGs. 3A-B are flowcharts of a method to be performed by a station computer 
according to an embodiment of the invention; 

FIGs. 4A-B are flowcharts of a method to be performed by an access point computer 
according to an embodiment of the invention; and 
5 FIG. 5 is a diagram of an message data structure for use in an implementation of the 

invention. 

DETAILED DESCRIPTION OF THE INVENTION 

In the following detailed description of embodiments of the invention, reference is 
10 made to the accompanying drawings in which like references indicate similar elements, and in 
which is shown by way of illustration specific embodiments in which the invention may be 
practiced. These embodiments are described in sufficient detail to enable those skilled in the 
art to practice the invention, and it is to be understood that other embodiments may be utilized 
and that logical, mechanical, electrical and other changes may be made without departing 
15 from the scope of the present invention. The following detailed description is, therefore, not 
to be taken in a limiting sense, and the scope of the present invention is defined only by the 
appended claims. 

The following description of FIG. 1 is intended to provide an overview of computer 
hardware and other operating components suitable for implementing the invention, but is not 
20 intended to limit the applicable environments. Various details provided in this description are 
specific to Macintosh computer systems. Note, however, that the concepts of the present 
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invention are not limited to application to a Macintosh platform. For example, these concepts 
may also be applied to x86 processor based computer systems, as well as other types of 
computing platforms. 

FIG. 1 illustrates a computer system 1 in which the present invention may be 
implemented. While FIG. 1 illustrates the major components of a computer system, it is not 
intended to represent any particular architecture or manner of interconnecting the components; 
such details are not germane to the present invention. 

As shown, the computer system 1 of FIG. 1 includes a microprocessor 10, a read-only 
memory (ROM) 11, random access memory (RAM) 12, each connected to a bus system 18. 
The bus system 18 may include one or more buses connected to each other through various 
bridges, controllers and/or adapters, such as are well-known in the art. For example, the bus 
system may include a "system bus" that is connected through an adapter to one or more 
expansion buses, such as a Peripheral Component Interconnect (PCI) bus, or the like. Also 
coupled to the bus system 18 are a mass storage device 13, a display device 14, a keyboard 15, 
a pointing device 16, a conmiunication device 17, and non- volatile RAM (NVRAM) 20. A 
cache memory 19 is coupled to the microprocessor 10. 

Microprocessor 10 may be any device capable of executing software instructions and 
controlling operation of the computer system, such as a PowerPC processor, for example, or 
an x86 class microprocessor. ROM 1 1 may be a non-programmable ROM, or it may be a 
progranmiable ROM (PROM), such as electrically erasable PROM (EEPROM), Flash 
memory, etc. 
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Mass storage device 13 may include any device for storing suitably large volumes of 
data, such as a magnetic disk or tape, magneto-optical (MO) storage device, or any variety of 
Digital Versatile Disk (DVD) or compact disk ROM (CD-ROM) storage. The data is often 
written, by a direct memory access process, into RAM 12 during execution of software in the 
5 computer system 1. One of skill in the art will immediately recognize that the term 

"computer-readable medium" includes any type of storage device that is accessible by the 
microprocessor 10. 

Display device 14 may be any device suitable for displaying alphanumeric, graphical 
and/or video data to a user, such as a cathode ray tube (CRT), a liquid crystal display (LCD), 
10 or the like, and associated controllers. Pointing device 16 may be any device suitable for 
Iji enabhng a user to position a cursor or pointer on display device 14, such as a mouse, trackball, 
iH touchpad, stylus with hght pen, voice recognition hardware and/or software, etc. 
''^ Communication device 17 may be any device suitable for or enabling the computer 

system 1 to communicate data with a remote processing system over a communication link, 

"=3::? 

m 15 such as a conventional telephone modem, a cable television modem, an Integrated Services 
B Digital Network (ISDN) adapter, a Digital Subscriber Line (xDSL) adapter, a network 
interface card (NIC), an Ethernet adapter, a wireless transmitter/receiver, etc. 

It will be appreciated that the computer system 1 is one example of many possible 
computer systems which have different architectures. The computer system of FIG. 1 may be, 
20 for example, an Apple Macintosh computer, such as an Apple iMac computer. FIG. 1 is also 
illustrative of personal computers based on an Intel microprocessor. Such personal computer 
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often have multiple buses, one of which can be considered to be a peripheral bus. Network 
computers are another type of computer system that can be used with the present invention. 
Network computers do not usually include a hard disk or other mass storage, and the 
executable programs are loaded from a network connection into the RAM 12 for execution by 
5 the microprocessor 10. A Web TV system, which is known in the art, is also considered to be 
a computer system according to the present invention, but it may lack some of the features 
shown in FIG. 1, such as certain input or output devices. A typical computer system will 
usually include at least a processor, memory, and a bus couphng the memory to the processor. 
Furthermore, one of skill in the art will immediately appreciate that the invention can 

10 be practiced with other computer system configurations, including hand-held devices, 
multiprocessor systems, microprocessor-based or progranmiable consumer electronics, 
network PCs, minicomputers, mainframe computers, and the like. The invention can also be 
practiced in distributed computing environments where tasks are performed by remote 
processing devices that are linked through a communications network. 

15 It will be apparent from this description that aspects of the present invention may be 

embodied, at least in part, in software. That is, the technique may be carried out in a computer 
system in response to its microprocessor executing sequences of instructions contained in a 
memory, such as ROM 11, RAM 12, mass storage device 13, cache 19, or a remote storage 
device. In various embodiments, hardwired circuitry may be used in place of, or in 

20 combination with, software instructions to implement the present invention. Thus, the 
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technique is not limited to any specific combination of hardware circuitry and software, nor to 
any particular source for the instructions executed by a computer system. 

In addition, throughout this description, various functions and operations are described 
as being performed by or caused by software code (or other similar phrasing) to simplify 
5 description. However, those skilled in the art will recognize that what is meant by such 
expressions is that the functions result from execution of the code by a processor, such as 
microprocessor 10. 

It will also be appreciated that the computer system 1 is controlled by operating system 
(OS) software which includes a file management system, such as a disk operating system, 
10 which is part of the operating system software. The file management system is typically stored 
m in the mass storage 13 and causes the microprocessor 10 to execute the various acts required 
^2 by the operating system to input and output data and to store data in memory, including 
storing files on the mass storage 13. 

A system level overview of the operation of embodiments of the invention is described 

ry 15 with reference to FIG. 2 that illustrates the establishment 200 of a secure wireless network 

O 

Q connection between a user station 201 and a wireless access point (AP) 203. The user station 
201 and the AP 203 are computers, such as computer system 1 in FIG. 1, that are coupled 
together through wireless transmitter/receivers serving as communication device 17. The AP 
203 is further coupled into a wired local area network (LAN) through an second 
20 communications device 17, such as a network interface card. The wireless network is secured 
by encrypting the data exchanged between the user station 201 and the AP 203 using a 
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channel key that is shared between the user station and the AP and a pre-defined shared key 
algorithm. The channel key can be common for all stations for a given period of time, or can 
be unique to each station. 

The user station 201 sends a request 207 for a connection to the AP 203. If the AP 
5 203 can handle a new connection, it sends its security preference 209, in this case "shared 
key," to the user station 201. The request 207 and the security preferences 209 form an 
inquiry sequence 205 between the station 201 and the AP 203. 

In one embodiment, the station 201 and the AP 203 next perform a key exchange 
sequence 211 based on a pre-determined key exchange security algorithm. Station 201 

10 chooses a secret station key and generates a value 213 using the secret station key and the key 
exchange security algorithm. The station 201 sends the value 213 to the AP 203. The AP 203 
chooses a secret AP key and generates a self-distributed key using the secret AP key and the 
security algorithm. The AP 203 also generates a value 215 using the value 213, the secret AP 
key, and the security algorithm. The AP 203 sends the value 215 to the station 201. The 

15 station 201 uses the value 215, the secret station key, and the security algorithm to calculate 
the self-distributed key. It will be appreciated that the key exchange security algorithm must 
be mathematically constructed in a fashion that permits the station 201 to obtain the self- 
distributed key as described while generating values that cannot be used to determine the 
secret keys of either the station or the AP. One such algorithm is the Diffie-Hellman key 

20 exchange algorithm as incorporated into the Hughes transmission protocol and is as explained 
in more detail below. 
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The station 201 now authenticates itself by transmitting authentication information to 
the AP 203. In the present example, the station 201 encrypts the user name and password 
using the self-distributed key and the pre-defined shared key algorithm to create the 
authentication information 217 that is sent to the AP 203. The AP 203 decrypts the user name 
5 and password and checks them for validity. Assuming the user name and password are valid, 
the AP 203 encrypts the current channel key using the self-distributed key and the pre-defined 
shared key algorithm and sends the encrypted result 219 to the station 201 to complete an 
authentication sequence 221. Once the station 201 has decrypted the current channel key, it 
terminates the setup connection used by the sequences 205, 21 1, 221 and establishes the 

10 secure wireless network 223 by transmitting data to the AP 203 encrypted with the current 
channel key. In an alternate embodiment, a standard encryption algorithm, such as RC4, is 
substituted for the pre-defined shared key algorithm. 

In another embodiment, the key exchange sequence 211 begins with the station 201 
transmitting a public key 213 for the station to the AP 203. The AP 203 responds by 

15 transmitting a public key 215 for the AP to the station 201. The station 201 uses the AP 
public key 215 to encrypt the user name and password, and sends the authentication 
information 217 to the AP 203. The AP 203 decrypts the result 217 using a private key 
corresponding to the AP public key. After validating the user name and password, the AP 203 
encrypts the current channel key with the station public key 213 and transmits the encrypted 

20 result 219 to the station 201. The station 201 decrypts the current channel key using a private 
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key corresponding to the station public key and terminates the setup connection prior to 
establishing the secure wireless network 223 as described above. 

A variation on the public/private key setup connection assumes that the station 201 
and the AP 203 exchange public keys using the key exchange sequence 211 only the first time 
5 a secure wireless network is established between them. Each stores the other's public key for 
subsequent connections. In this embodiment, the AP 203 determines which stored public key, 
if any, is appropriate based on a station identifier contained in the request 207. Alternatively, 
the public keys can be exchanged outside the wireless network. 

In a further embodiment, the authentication sequence 221 uses the Challenge 
10 Handshake Authentication Protocol (CHAP). Each station is assigned a CHAP key which can 

eJ i 

IJi be the self-distributed key created through the key exchange sequence 21 1 as described above, 

ffl or can be an unique key chosen by either the AP 202 or the station 201 and transmitted to the 

i"=i 

other through a mechanism outside the wireless network. When the station 201 requests a 

gi 

;^ connection 207, the AP 203 sends a challenge to the station 201 either as part of the security 
Ill 15 preferences 209 or as a separate message (not shown in FIG. 2). The station 201 encrypts the 
Q challenge with its CHAP key to create the authentication information 217 that is sent to the 
AP 203. The AP 203 also encrypts the challenge with the station's assigned CHAP key. If 
the authentication information 217 received from the station 201 matches the challenge as 
encrypted by the AP 203, the station 201 is validated and the AP 203 encrypts the current 
20 channel key with the CHAP key and sends it 219 to the station 201. In this embodiment, the 
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user name and password is not sent to the AP 203 across the wireless network, reducing the 
possibility of their being intercepted. 

The authentication sequence prevents the connection of a station that is fraudulently 
using a common channel key and thus reduces the number of time that a common channel key 
5 must be reissued. Because the user must program the station only once, when it is initially 
setup for the wireless network, the invention reduces user confusion and makes the wireless 
network easier to use. While the invention is not limited to any particular sequence of key 
exchange messages, for sake of clarity a simplified sequence has been described. It will be 
readily apparent that other message sequences that result in the secure transmission of the 

10 authentication information and the shared channel key are equally applicable. 

Next, the particular methods of the invention are described in terms of computer 
software with reference to a series of flowcharts shown in FIGs 3A-B and 4A-B. The 
methods to be performed by a computer constitute computer programs made up of computer- 
executable instructions. Describing the methods by reference to a flowchart enables one 

15 skilled in the art to develop such programs including such instructions to carry out the 
methods on suitably configured computers (the processor of the computer executing the 
instructions from computer-readable media). If written in a programming language 
conforming to a recognized standard, such instructions can be executed on a variety of 
hardware platforms and for interface to a variety of operating systems. In addition, the present 

20 invention is not described with reference to any particular progranmiing language. It will be 
appreciated that a variety of progranmiing languages may be used to implement the teachings 
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of the invention as described herein. Furthermore, it is common in the art to speak of 
software, in one form or another (e.g., program, procedure, application...), as taking an action 
or causing a result. Such expressions are merely a shorthand way of saying that execution of 
the software by a computer causes the processor of the computer to perform an action or a 
5 produce a result. 

Referring first to FIG. 3 A, the acts to be performed by a computer executing the 
station method 300 are shown. The station method 300 begins by sending a request for a 
connection to an AP (block 301). The request message also includes an inquiry regarding the 
security preferences of the AP. The response received (block 303) will indicate whether a 
10 connection is available (block 305) and if so, the type of security preference (block 307). If 
jJl there is no connection available, or if the security preference is not "shared key," the security 
method 300 exits. It will be appreciated that an available connection using a different security 

E 

preference can be established through other methods not germane to the present invention. 

When necessary, a key exchange method is performed by the station computer at block 

lij 15 309 (shown in phantom). The key exchange method for the station corresponds to the actions 

D 

□ described in HG. 2 for the key exchange sequence 211. A particular embodiment using the 
Hughes transmission protocol for the key exchange method is described in detail below with 
reference to FIG. 3B. The user name and password are next encrypted using the appropriate 
key, e.g., the self-distributed key or the AP public key, and sent to the AP (block 311). If the 
20 AP responds with an encrypted channel key (block 313), the station can establish the secure 
network connection by transmitting a message encrypted with the channel key as is 
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conventional and not illustrated. Optionally, the method 400 terminates the initial connection 
before establishing the secure network connection (block 315). 

The corresponding method 400 to be executed on a computer acting as the AP is 
illustrated in FIG. 4A. The AP method 400 receives the request from the station at block 401, 
5 determines if there is an available connection (block 403) and responds with the AP security 
preferences if so (block 405). The AP computer next performs a key exchange method at 
block 407 when required. A embodiment for the AP key exchange method using the Hughes 
transmission protocol is described in detail below with reference to FIG. 4B. 

When the AP computer receives the encrypted user name and password (block 411), 

10 the method 400 decrypts and validates the user name and password against the valid users for 
the AP (block 41 1). Assuming the user name and password are valid (block 413), the AP 
method encrypts the current channel key for the station using the appropriate key, e.g., the 
station public key or the self-distributed key, and sends the encrypted result to the station 
(block 413). The participation of the AP in the subsequently-established secure network is 

15 well-known and not illustrated. The embodiment illustrated in HG. 4 A returns error 

messages to the station at block 417 when a connection is not available or when the user name 
and password cannot be validated. 

Turning now to HGs. 3B and 4B, one embodiment of key exchange methods 320, 420 
for the station and AP is described. The key exchange is based on the Hughes transmission 

20 protocol which incorporates the Diffie-Hellman security algorithm shown in formula 1 in 
which n, g and p are large integers, such that g is less than p but greater than 1. 
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(formula 1) ^ = rnod p 

The AP chooses a value for n for each station and generates a unique shared secret key 
k using formula 1. The values of n assigned to the stations are kept secret by the AP 
However, because it is difficult to calculate n given the result of the security algorithm, the 
5 values of g and p do not have to be secret, nor do they have to be unique to each station. In 
one embodiment, the values of g and p are sent to the station by the AP as part of the response 
message at block 307 in FIG. 3A. In an alternate embodiment, the values of g and p are given 
to a user when the user's name and password are initially registered with the AP. The user 
then inputs the values to the station. In still another embodiment, the AP publishes the values 
10 of g and p and all stations use the same values. One advantage of using the same values of g 
and p for all stations, is that the values can be hardcoded into the stations, and all APs, when 
they are manufactured, eliminating the complexity of distributing the values through the 
network and also eliminating errors inherent in having the user manually input the values to a 
station. 

15 In the interest of clarity, the acts performed by the computers executing the station and 

the AP key exchange methods 320, 420 are described in an interleaved fashion, beginning 

with the key exchange method for the AP 420. 

As described above, the AP selects a random large integer x to be the unique value of n 

for the station (the secret AP key) and generates the self-distributed key k using formula 1 
20 (block 421 in FIG. 4B). Similarly, the station selects a random large integer y (the secret 

station key) and calculates a value Fusing formula 2 (block 321 in FIG. 3B). 
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(formula 2) 



y = mod p 



The station sends y to the AP (block 323), When the AP receives F, it generates a value X 



using formula 3 (block 423), which it sends to the station (block 425). 



(formula 3) 



X^Y^'modp 



5 The station calculates k from X using formulas 4 and 5 (block 325). 



(formula 4) 



-1 



z = y 



(formula 5) 



= mod p 



At this point, both the station and the AP are in possession of the self-distributed key k 
and can begin the encrypted authentication process described previously. One of the 



10 advantages of the Hughes transmission protocol is that it places the majority of the calculation 
fjl burden on the station, not the AP, thus allov^ing the AP to service more stations 
;2 simultaneously. 



invention have been described. The method performed by a computer acting as a station has 
ilJ 15 been shown by reference to a flowchart in FIG. 3 A including all the acts from 301 until 315. 

The method performed by a computer acting as an access point by reference to a flowchart in 
FIG. 4A including all the acts from 401 until 417. Additionally, the use of the Hughes key 
exchange protocol in an embodiment of the invention has been shown by reference to 
flowcharts in FIGs. 3B and 4B including all the acts from 321 until 325 and from 421 until 
20 425, respectively. 



The particular methods performed by a station and AP for an embodiment of the 
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The invention is particularly suited for use with Infrastructure Networks defined by the 
802.11 standard. An Infrastructure Network provides wireless stations access to resources on a 
wired LAN by way of an AP. The AP specifies whether access to the LAN is open to all 
stations ("Open System") or secured through a Wired Equivalent Privacy (WEP) protocol 
5 using a shared key and a WEP encryption algorithm ("Shared Key"). The 802. 11 standard 
assumes that the shared WEP key is distributed though some secure channel prior to creating 
the WEP connection between the AP and a station. The invention provides such a secure 
channel as described above by exchanging messages between the station and the AP using the 
802.11 standard message format. In one embodiment shown in FIG. 5, a data structure 500 
Jq 10 for the invention's messages corresponds to an 802.1 1 management frame for authentication 
Ill information. It will be appreciated that only the fields germane to the invention are illustrated 
ffl in FIG. 5 and that one of skill in the art will readily understand the location and use of the 
^'^ omitted fields upon reading the following description in light of the 802.1 1 standard. 
,H Fields 501 and 503 contains values that define the type and sub-type of the data 

{IJ 15 structure, respectively, i.e., management and authentication. A station address field 505 
O contains a value for the station identity for those messages sent from the station to the AP. 

Fields 507, 509, 511, and 513 collectively form a frame body 515 for the message and contain 
information specific to the message being transmitted as described next. 

The particular messages used by the invention can be divided into two groups. The 
20 first group is referred to as the AP's Choice group and contains the messages 207, 209 of the 
inquiry sequence 205 in FIG. 2. The second group is referred to as the Name and Password 
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group and contains the messages 213, 215 for the key exchange sequence 211 and the 
messages 217, 219 for the authentication sequence 221. The message data structures are 
described next with reference to the corresponding messages in FIG. 2. 

The frame body 515 for an inquiry message 207 from the station to the AP specifies 
that is it a request for AP's Choice of authentication algorithm in the authentication algorithm 
identifier field 507 and the number "1" in the authentication transaction sequence number 
field 509. The other fields are empty. The AP responds with a security preferences message 
209 containing a value for its preferred method of authentication in field 507, e.g. Shared Key 
or Open System, and a sequence number of "2" in field 509 if a connection is available. If a 
connection is unavailable, the message 209 contains an error code in the status code field 511. 

Assuming that a connection is available and that the AP's choice of authentication is 
Shared Key, in an embodiment using the Hughes key exchange protocol, the station sends a 
message 213 containing a value for name and password authentication in field 507 and the 
value of Y (calculated by the station using the Diffie-Hellman algorithm as described above) 
in the authentication algorithm dependent information field 513. The sequence number in 
field 509 is "1." The AP responds with a message 215 containing the same value in field 507, 
the value of X in field 513, and a sequence number of "2" in field 509. 

The key exchange sequence 21 1 is now complete because the station has the 
information necessary to calculate the self-distributed key as described previously. The 
station begins the authentication sequence 221 by using the WEP encryption algorithm to 
encrypt the user name and password with the self-distributed key and storing the result in field 
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513 of the message 217 and a sequence number of "3" in field 509. Field 507 contains the 
name and password authentication value as before. The AP decrypts the user name and 
password and validates them. If the user name or password are valid, the AP encrypts the 
shared WEP key, i.e. the shared channel key, with the self-distributed key and stores the result 
5 in field 513 to create message 219. The AP also stores the value associated with Shared Key 
authentication in field 507, and a "4" in field 509. If the user name or password are invalid, 
the message 219 contains an error code in the status code field 511 and no data in field 513. 

The establishment of a secured wireless network channel between a station and an 
access point has been described that requires the user to program his or her station only once 



10 while simultaneously enhancing the security of a wireless network that uses a common shared 
In key. A particular embodiment has also been described that uses the Hughes transmission 
protocol to reduce the processing burden on the AP, thus enabling the AP to service more 
stations simultaneously. An embodiment applicable for use with an IEEE 802.11 
iQ Infrastructure Network uses a message data structure that conforms to the format specified by 



ry 15 the 802.1 1 standard, allowing use of the invention in such networks while adhering to the 



Although specific embodiments have been illustrated and described herein, it will be 
appreciated by those of ordinary skill in the art that any arrangement which is calculated to 
achieve the same purpose may be substituted for the specific embodiments shown. This 
20 application is intended to cover any adaptations or variations of the present invention. 



standard. 
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The terminology used in this application with respect to networks, both wired and 
wireless, is meant to include all such network environments. Therefore, it is manifestly 
intended that this invention be limited only by the following claims and equivalents thereof. 
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